JP2006244474A - Method and system for safely disclosing distinguishing information through the internet - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a method and a system for safely disclosing distinguishing information through the Internet. <P>SOLUTION: This explanatory embodiment includes the method and the system for presenting information for a user and safely disclosing distinguishing information through the Internet and includes receiving information from a server, an analysis of information and the presentation of information analyzed for validity inspection for the user and the validity inspection of information by the user in the limited number of configurations controlled by a client. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates generally to the field of computer and network security, and more particularly to authenticating identification information of a computer system in order to securely disclose information over the Internet.

  Many transactions involving the exchange of money and / or personal identification information occur daily using the Internet and Internet technology. In addition, many unauthorized persons are attracted to intercepting some of these transactions to steal money and / or personal identification information. One way to intercept involves using a counterfeit website that appears to be identical or nearly identical to a legitimate website in appearance. As a result, unsuspecting innocent users are required to reveal personal information such as name, address, social security number, credit card number, etc., and this personal information can be used to identify counterfeiters (forged or fraudulent sites). The person who started up can steal user identification information and / or money. Such theft is becoming an increasing problem.

  In the future, more and more transactions will occur. As users complete more and more transactions online, user comfort will increase. This can increase the user's confidence that the transaction is safe and secure.

  In addition, these transactions may be performed using many different websites and many different user interfaces. There is no predictable milepost in the user's experience and there is no consistency, so the user decides whether the website is legitimate and not a website created by a fraudster Becomes difficult.

  A method and system for securely disclosing identification information over the Internet.

  Exemplary embodiments disclosed herein may include methods and systems for mitigating the aforementioned disadvantages as well as other disadvantages. Exemplary embodiments disclosed herein can include a method and system for presenting information to a user over the Internet and securely disclosing identification information, receiving information from a server, information Analyzing the information, presenting the analyzed information to a user for validation, and validating the information by the user.

  Other embodiments can include a finite state machine system that presents information over the Internet and securely discloses identification information and is configured to receive information from a server and send information to the server A communication module, an analysis module communicatively coupled to the communication module and configured to receive information from the communication module, and a communication module communicatively coupled to the analysis module and the communication module to pass information to the user for validation And a user interface module configured to present, wherein the information received from the server includes server identification information along with an information request by the server.

  FIG. 1 is a block diagram of a system that can be utilized, generally at 100, to provide information to a user and securely disclose identification information over the Internet according to an illustrative embodiment. In this embodiment, system 100 includes a client 102 coupled to a network 104. System 100 further includes server 1 106, server 2 108, and server 3 110, which are also coupled to network 104.

  In this embodiment, the client 102 includes a user interface 120 that includes visual indicators 122, 124, 126 and input fields 130, 132, 134. When the client 102 accesses the server 1 106 via the network 104, the client 102 can request and receive identification information and other information from the server 1 106, or it can receive the security certificate and receive the server. The identification key and / or identification information for 1 106 can be analyzed. The client 102 can then provide indicators 122, 124, 126 to the user.

  Indicators 122, 124, 126 may include server and / or associated website identification information, a visual secret, and an identification card or other information if desired. The client 102 can parse the information received from the server 1 106 so that this information is the server's identification information and a visual secret that may have been previously entered by the user of the client 102; It will provide identification information that may have been previously provided to the server 1 106 by the user. It will be appreciated that many other indicators can be utilized without departing from the concepts disclosed herein.

  The user interface 120 can be a very secure desktop, and therefore an unidentified rogue 112 cannot use spyware or other methods to intercept or steal information from the user interface 120. . In this way, identification information for server 1 106 is displayed, which can be associated with an identification key associated with server 1 106. In addition, the user can also include visual secrets such as photos and other information so that the indicators 122, 124, 126 are presented with website identification information in a trusted user interface and have been tampered with. It can be shown to the user. This information as well as other secure information will indicate to the user that the connection is secure and allow the user to determine that the associated website is valid, authentic and / or legitimate.

  When server 1 106 and / or related websites request or require information such as registration information, login information, identification information, personal information or other information, information received from server 1 106 It can be analyzed and retrieved and the information displayed to the user via input fields 130, 132, 134. In this way, the control of the experience is with the user on the user interface 120 and / or secure desktop, thus allowing the user to provide personal information and / or identification information on a fraudulent website or an unauthorized website Sex is lower.

  The input fields 130, 132, 134 may vary depending on the information requested from server 1 106 and / or its associated website. Further, although three input fields are shown, it will be understood that any number of input fields may be utilized as desired. Similarly, although three indicators are shown, any number of indicators can be utilized without departing from the concepts disclosed herein.

  Similarly, when client 102 accesses server 2 108, client 102 may request identification information as well as other information that client 102 may have stored on server 2 108 and its associated website. . If client 102 previously stored an attendance marker or key, or other authentication information, on server 2 108, it is retrieved and a visual or other indicator 122, 124 along with the server's identification information. , 126 can be shown to the user. Since the certificate and identification key are fixed for each server and / or website, it may be more difficult for an unidentified fraudster 112 to forge the website and obtain personal information. It will be appreciated that other methods and systems may be utilized to obtain server information and / or identification information. In addition, the user interface parses the information and presents the required information to the user on a secure desktop so that unidentified fraudsters 112 can copy or forge the website to obtain personal information. Can be difficult.

  The user interface 120 can be one of a finite number of various interface displays that can be viewed by the user, thereby indicating that the user is not accessing his intended server and associated website. Any anomalies, irregularities, or other indicators that will be detected can be easily identified. Other indicators may include, but are not limited to, a warning interface that alerts the user that a particular transaction or other information exchange is taking longer than expected. This can be an indication that an unauthorized person is intercepting the transmission, among other problems. This finite number of user interfaces can reduce the likelihood that an unidentified fraudster 112 can forge a website and / or otherwise obtain information from the user in an unauthorized manner.

  Thus, if client 102 has previously accessed server 2 108 and later tried to access server 2 108 again, and a different identification key indicator appears on user interface 120, this may indicate that the client has a different website Redirected to and / or an unidentified fraudster attempted to forge a website associated with server 2 108, or server 2 108 lost information previously stored in it, Display to the client. In either of these situations, the user will have an indication that this server and / or associated website should not be trusted. This display can be displayed to the user to leave the site or to pay close attention to information disclosed to the website and / or associated server.

  Indicators 122, 124, 126 may also include identification information previously stored or disclosed by the user on the server and / or associated website. This can be in the form of an information card or persona, or other way of indicating the type and extent of information previously disclosed on the server or associated website.

  Similarly, when client 102 accesses server 3 110 via network 104, server 3 110 will have a different identification key and / or identification information than other websites and / or web servers, Can appear to the user as different visual indicators. Similarly, different identification information, as well as different input fields 130, 132, 134 may be shown. Each accessed server will provide different information, but the information will be provided to the user in a uniform manner, which allows the user to identify the accessed server, as well as previously disclosed You will feel more comfortable with the information and the information requested through the input fields 130, 132, 134.

  The visual indicator can also include a “visual secret”. This may be any image, identification information, or other information that the user can store in the user interface 120, thereby making the user more confident about the authenticity of the user interface, and thus You will feel more comfortable about disclosing information to the server. This is because when a visual secret appears, this will indicate to the user that a secure connection exists or that the desktop has not been counterfeited. Further, the user interface 120 may be part of a secure desktop and / or secure area of a computer that does not fully or highly accept spyware and other techniques for secretly obtaining information. The visual secret is inaccessible to the unidentified scammers 112, and therefore it is very difficult, if not impossible, to forge or recreate.

  Although a visual secret has been described in the exemplary embodiment, in other embodiments, the secret may be visual, audio, multimedia, biological, and / or other data, and / or combinations thereof.

  As described above, an unauthorized person may trick a client and / or a user of the client to provide personal information. An unidentified fraudster 112 may attempt to obtain identification information and / or other information from the client 102 by copying or making the legitimate server and / or website visible. According to an exemplary embodiment disclosed herein, when a client requests an identification key, an unidentified fraudster's identification key will be provided to the client, so that the client has previously visited It can be recognized that it is not a server. In addition, when a client requests an attendance marker previously stored on the server, the client and / or user has never accessed this unidentified fraudster's website before, so It will not have. In either of these scenarios, the user of client 102 should be aware that this website and / or server is not trusted and that the user should be careful in disclosing identification information or other information, You will be warned.

  In this exemplary embodiment, users and / or clients have more security levels that can prevent unidentified scammers from spoofing websites for personal information. Can do. In addition, it can also suppress “man in the middle” information interception and provide additional security.

  As described above, the attendance marker can be used to authenticate the website and provide further security. This may be attractive to server and website operators who may be concerned about fraud. This can provide an additional level of security generated by the user that can prevent unidentified users from gaining sensitive information.

  FIG. 2 illustrates an example of a suitable computing system environment in which embodiments of the invention may be implemented. The system 200 represents a system that can be utilized to act as a client and / or server as described above. The system 200 typically comprises at least one processing unit 202 and memory 204 in its most basic configuration. Depending on the exact configuration and type of computing device, memory 204 may be volatile (such as RAM), non-volatile (such as ROM, flash memory, etc.), or some combination of the two. In FIG. 2, this most basic configuration is indicated by the dashed line 206. In addition, the system 200 may have additional features / functions. For example, the device 200 can include additional storage devices (removable and / or non-removable), including but not limited to magnetic or optical disks or tapes. In FIG. 2, such additional storage devices are shown as removable storage device 208 and non-removable storage device 210. Computer storage media is volatile and non-volatile, removable and non-removable implemented in any method or technique for storing information such as computer-readable instructions, data structures, program modules, or other data Media. Memory 204, removable storage device 208, and non-removable storage device 210 are all examples of computer storage media. Computer storage media include, but are not limited to, RAM, ROM, EEPROM, flash memory, or other memory technology, CD-ROM, digital versatile disk (DVD), or other optical storage device, magnetic cassette, magnetic tape, magnetic disk It includes storage devices, or other magnetic storage devices, or any other medium that can be used to store desired information and that can be accessed by system 200. Any such computer storage media can be part of system 200.

  The system 200 may also include one or more communication connections 212 that allow the system to communicate with other devices. Communication connection 212 is an example of a communication medium. Communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media. The term “modulated data signal” means a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communication media includes wired media such as a wired network or direct-wired connection, and wireless media such as acoustic, radio frequency, infrared and other wireless media. The term computer readable storage media as used herein includes both storage media and communication media.

  The system 200 may also have one or more input devices 214, such as a keyboard, mouse, pen, voice input device, touch input device. In addition, one or more output devices 216 such as a display device, a speaker, and a printer can be provided. All these devices are well known in the art and will not be discussed in detail here.

  A computing device, such as system 200, typically comprises at least some form of computer readable storage media. Computer readable storage media can be any available media that can be accessed by system 200. By way of example, and not limitation, computer readable storage media may include computer storage media and communication media.

  FIG. 3 illustrates at a conceptual level, generally at 300, a system for securely disclosing identification or other information over the Internet, according to an illustrative embodiment. This example shows that system 300 includes a client 302 and a server 306 connected via a network 304 or other channel. As will be apparent, most devices can function as both a client 302 and a server 306 in various cases. However, for the sake of clarity, these functions are shown separately here. In addition, network 304 may be almost any type of network, including the Internet, or some other type of channel suitable for establishing communication between client 302 and server 306. Also good.

  The client 302 may be a client such as a personal PC that accesses a website via the Internet. However, it will be understood that other devices and configurations may be utilized without departing from the concepts disclosed herein. Similarly, server 306 may be a host or other configuration for a website, device, or other system.

  In this embodiment, system 300 includes a client 302 coupled to a network 304. In addition, the system 300 also includes a server 306 having associated content 308. A server is also coupled to the network 304. Server 306 includes content 308, which may be in the form of a website or other configuration.

  Client 302 includes a secure desktop 310. The secure desktop 310 can be in the form of software code and modules, which are in a highly protected area and are very difficult to intrude to gain sneak information from the user or tamper with the information. Can be. The secure desktop 310 can also be very difficult to counterfeit a secure desktop, preventing spyware from recording keystrokes or otherwise intercepting information. Can.

  The secure desktop 310 includes a communication module 312 that is specifically configured to send and receive communications with the server 306 over the network 304. The communication module can receive the communication from the server 306 and then pass it to the analysis module 314.

  The analysis module 314 can be configured to analyze incoming information and present it to the user via the secure desktop 310 and / or the user interface module 316. The analysis module 314 can evaluate the type of information received and can present the requested input from the server 306 to the user. As described above in FIG. 1, the received information can include identification key information, as well as attendance markers previously left on the server by the client 302, as well as other information. Further, the analysis module 314 can send information to the user interface module 316 and / or the user in a uniform manner so that the user can be more comfortable when disclosing information to the server 306; You can feel safer.

  The user interface module 316 can have a finite number of states or indications, so that if there is an anomaly or irregularity in the user interface, it is a visual clue or indicator that indicates something is wrong. Will be provided to the user. The user interface module 316 can also include an area for the user to enter information to be sent to the communication module 312, which then sends this information to the server 306. In this way, the user can be provided with an interface that is somewhat uniform and can display server identification information as well as other users' confidential or personal information in a uniform manner, thereby It is less likely that a user will provide identification information or other information to a fraudulent website or counterfeiter.

  Although the secure desktop 310 is shown as being on the client 302, it is understood that the secure desktop 310 may be on an external device and / or a remote server, including a web server, network server, etc. It will be. Further, secure desktop 310 may be described as a software module, but may be hardware, firmware, and / or software modules, and / or combinations thereof.

  The information can also be used to determine the reliability of the server 306 so that the client 302 and the user of the client 302 can verify that the server 306 and / or related websites and systems are genuine and / or legitimate. Can be more convinced. This can reduce fraud, among other benefits, and can increase the user's confidence before the user discloses identification or other sensitive information to the server 306. This authentication can result in consistent recognition of ongoing digital relationships and authentication of servers, websites, and / or systems.

  If the client 302 receives anything other than expected information, this may indicate that the client 302 has not previously accessed this server 306. This can also indicate, among other scenarios, that the legitimate site has been forged or that the server 306 has lost the key. This can indicate to the user of the client 302 that the server 306 is untrusted and that the user should disconnect from the server 306, proceed with caution and / or what sensitive information, confidential information, And / or that the identification information should not be leaked.

  FIG. 4 is a flowchart illustrating an exemplary embodiment of a method for presenting information to a user, generally at 400, according to an exemplary embodiment. Method 400 includes a receive operation 402. Receive operation 402 includes receiving information, which can include an identification key from a server or other entity. The identification key can include identification information about the server, which includes but is not limited to a unique URL, system owner, and / or other identification information. Furthermore, the identification key may be part of a certificate associated with the server, such as a security certificate or other certificate. The identification key can be extracted by analyzing the certificate. Control then proceeds to analysis operation 404.

  Parsing operation 404 can include dividing the information into various parts. Various portions may include identification information, attendance markers previously stored on the server, information requests from the server to clients and / or users, and / or other information. Control then proceeds to evaluation operation 406.

  Evaluation operation 406 includes evaluating the received information to determine server identification information, requests from the server, and other information. It will be appreciated that other information and / or combinations of information may be utilized without departing from the concepts disclosed herein. Once the information is evaluated, control then proceeds to presentation operation 408.

  Present operation 408 includes presenting information to the user in a generally uniform manner. A uniform scheme may have a finite number of states or user interfaces available. With this limited number of user interfaces, the user can be more at ease when dealing with servers and websites. This also makes it easier for users to identify counterfeit websites, and otherwise to identify when conditions and information are unusual, so users can disclose information to websites or other systems. Can be identified more easily.

  FIG. 5 is a flowchart illustrating a method, generally at 500, for determining the reliability of a server, system, or website according to an exemplary embodiment. According to an aspect of method 500, processing begins with receive operation 502. Receive operation 502 can include receiving a certificate, identification key, and other information associated with the server from the server or other entity via a channel as described above. As mentioned above, this information can include, among other information, identification information about the server and / or associated website, and information requests to the client. Control then proceeds to the analysis operation at 504.

  Analyze operation 504 includes analyzing the information and extracting various portions of the information. These parts include, among other things, identification information about the server and one or more associated websites, and requests for information from clients. The analysis operation 504 can then present information to the client in a uniform manner via a secure desktop and / or finite state user interface. With this arrangement, control of the requested and provided information is with the user, not the server or website. This allows the user to be more comfortable about the safe presentation and transfer of information. In addition, this configuration makes it more likely that the user will be able to identify anomalies with the server and the information presented and continue to visit or disclose information to this server. be able to. Control then proceeds to query operation 505.

  Query operation 505 includes determining by the user whether the presented information about the server and associated website is valid and that the server is the server it refers to. The user can be provided with visual indicators that, among other things, indicate server identification information, an indication of ongoing digital relationships, a display of previously exchanged security keys, and / or other information. be able to. The user can then utilize these indicators to determine whether the server is a valid server. If it is determined that the server is valid, control proceeds to system authentication 506. This may be because the client has previously accessed this server and has stored and / or associated a security key with this server, or the user has otherwise trusted this server and interacted with this server. Indicates that you will continue.

  If it is determined that the information is not valid, control proceeds to system unauthenticated 508. If the system is not authenticated, the user can choose to leave the website or disconnect from the server. In addition, the user will be warned and can be careful to disclose any information to the server. Control then proceeds to request function 510.

  Request function 510 may include requesting an identification key or other information from the server. If the client has previously accessed a server or website and this function is initiated, the user may have some indication that the website is not authentic. This can also indicate to the user that another entity is seeking identification information from the user. This can also indicate that the server has been tampered with. In either of these scenarios, the client user can have an indication that the system is untrusted and should be careful when disclosing any information on the server or website.

  The logical operations of the various embodiments of the exemplary embodiments include (1) as a sequence of computer-implemented operations or program modules executed on the computing system and / or (2) within the computing system. Can be implemented as interconnected machine logic circuits or circuit modules. This implementation is a matter of choice depending on the performance requirements of the computing system implementing the present invention. Accordingly, the logical operations making up each of the exemplary embodiments described herein are referred to variously as operations, structural devices, acts or modules. These operations, structural devices, operations, and modules may be implemented in software, firmware, dedicated digital logic, and / or without departing from the spirit and scope of the present disclosure as set forth in the claims appended hereto. It will be understood by those skilled in the art that it can be realized by any combination thereof.

  Although exemplary embodiments are described in language specific to structural features and methodological operation of a computer and are described by computer readable storage media, the exemplary embodiments defined in the appended claims are: It should be understood that the invention is not necessarily limited to the specific structural features, acts, or media described. As an example, the identification information may be encoded using a format other than XML. Accordingly, these specific structural features, acts, and media are disclosed as exemplary embodiments of implementing the claimed invention.

  The various embodiments described above are provided by way of illustration only and should not be construed to limit the present disclosure. Without departing from the illustrative embodiments and applications illustrated and described herein, and without departing from the true spirit and scope of the present disclosure as set forth in the appended claims. Those skilled in the art will appreciate the various modifications and changes that can be made.

1 is a block diagram of a system for creating one or more attendance markers and recognizing ongoing digital relationships, according to an illustrative embodiment. FIG. FIG. 11 illustrates an example of a suitable computing system environment on which an exemplary embodiment can be implemented. 2 is a block diagram of a system for creating one or more attendance markers and authenticating the system, according to an illustrative embodiment. FIG. 6 is a flow diagram illustrating operational characteristics associated with creating an attendance marker and recognizing an ongoing digital relationship, according to an exemplary embodiment. 5 is a flow diagram illustrating operational characteristics associated with authenticating a system, according to an exemplary embodiment.

Claims (20)

A method for receiving and presenting information,
Receiving information from the server by the client;
Analyzing the information;
Presenting the analyzed information to a user for validation according to a finite number of formats controlled by the client.   The method of claim 1, further comprising validating the information by the user. Enabling further interaction between the client and the server in response to being validated;
The method of claim 2, further comprising terminating communication with the server in response to a lack of validation.   4. The method of claim 3, wherein the further interaction includes providing information to the server.   The method of claim 1, wherein the received information includes server identification information.   The method of claim 1, wherein the received information includes an information request.   The method of claim 1, wherein the analyzing comprises analyzing the received information.   The method of claim 1, wherein the presenting includes providing an indicator to the user.   The method of claim 8, wherein the indicator comprises a visual secret. A finite state machine system for providing information over the Internet and disclosing identification information safely,
A communication module configured to receive information from the server and send information to the server;
An analysis module communicatively coupled to the communication module and configured to receive information from the communication module;
A user interface module communicatively coupled to the analysis module and the communication module and configured to provide information to a user for validation in a finite number of configurations;
The information received from the server includes server identification information or an information request by the server.   The system of claim 10, wherein the finite state machine is on a computer.   The system of claim 10, wherein the finite state machine is on a remote server.   The system of claim 10, wherein the analysis module analyzes the received information.   The system according to claim 13, wherein the analyzed information includes server identification information or an information request by a server.   The system of claim 13, wherein the analysis module evaluates the analyzed information.   The system of claim 10, wherein the user interface module includes a secure desktop.   The system of claim 16, wherein the secure desktop is on a client.   The system of claim 16, wherein the secure desktop includes a finite number of user interface displays. A computer-readable storage medium encoded with a computer program of instructions for executing a computer process for presenting information and securely disclosing identification information via the Internet, the computer process comprising:
Receiving information from the server by the client;
Analyzing the information;
Presenting the analyzed information to a user for validation in a finite number of configurations controlled by the client. The computer-readable storage medium of claim 19, further comprising enabling further interaction between the client and the server in response to being validated.

Images